About
Results-driven SOC L2 Security Engineer with 2+ years of experience in threat detection, incident response, and security operations within enterprise environments. Proficient in Splunk and IBM QRadar SIEM platforms, proactive threat hunting, vulnerability management, and multi-source log analysis across Windows, Linux, firewall, and proxy environments. Demonstrated ability to execute containment and eradication procedures, fine-tune detection logic (30% false positive reduction), and automate SOC workflows using Python and PowerShell. Experienced in MITRE ATT&CK framework mapping, RACI matrix development, and cross-team escalation with strict SLA adherence.
Skills & Expertise (33)
Work Experience
Cyber Security Analyst – SOC Level 1
Accenture
Aug 2024 - Present
Monitor and analyze security alerts using Splunk SIEM across large-scale enterprise environments, triaging 100+ alerts daily. Investigate confirmed incidents including phishing attacks, brute force attempts, and malware infections, executing containment, eradication, and recovery procedures end-to-end. Reduced false positive rate by 30% by fine-tuning SIEM correlation rules and detection logic. Conduct log analysis across Windows Event Logs, firewall, proxy, and endpoint data sources for threat investigation. Perform MITRE ATT&CK framework mapping for detected threats to improve detection coverage and threat intelligence. Conduct proactive threat hunting activities using IOC analysis and behavioral detection techniques to uncover threats bypassing existing controls. Automate repetitive SOC tasks using Python and PowerShell scripts, improving alert triage efficiency and reducing manual processing time. Create, maintain, and update incident response playbooks to standardize SOC workflows; developed RACI matrices to define roles and responsibilities across security processes. Coordinate escalation of high-severity incidents to L2/L3 security teams with detailed investigation reports. Manage and resolve security tickets in ServiceNow, ensuring strict SLA compliance and accurate documentation.
Cyber Security Intern
Accenture
Feb 2024 - Jul 2024
Assisted senior analysts in monitoring SIEM alerts and identifying suspicious network and endpoint activity. Performed basic threat analysis and log investigation to support incident triage. Supported vulnerability scanning operations using Nessus to identify and report system weaknesses. Gained hands-on experience in incident handling procedures and SOC operational workflows.
Education
Bachelor of Technology (B.Tech) – Computer Science and Engineering - D Y Patil College of Engineering and Technology
- 2024 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
Skills (33)
Click a skill to find developers with the same skill
